Quoting Matt Willsher ([email protected]): > Hi, > > I'm trying to add /dev/ppp to a container so I can initiate a PPPoE > connection from inside the container. > > lxd is 0.27 > > I have the following configuration on the container, derived from > https://github.com/lxc/lxd/blob/master/specs/configuration.md#type-unix-char > > config: > linux.kernel_modules: pppoe > ppp: > major: "108" > minor: "0" > mode: "0600" > path: /dev/ppp > type: unix-char > > The device appears in the container: > > crw------- 1 root root 108, 0 Jan 28 10:06 /dev/ppp > > Access to /dev/ppp gets denied:
Yeah, that is coming from linux/drivers/net/ppp/ppp_generic.c which has a check at ppp_open() for !capable(CAP_NET_ADMIN). That requires the capability against the initial user_ns, meaning you will only be allowed to do this in a privileged container (security.privileged: true). > # cat /dev/ppp > cat: /dev/ppp: Operation not permitted > > # ifup pppoe0 > Plugin rp-pppoe.so loaded. > Couldn't open the /dev/ppp device: Operation not permitted > modprobe: ERROR: ../libkmod/libkmod.c:556 kmod_search_moddep() could not open > moddep file '/lib/modules/4.2.0-25-generic/modules.dep.bin' > Linux kernel does not support PPPoE -- are you running 2.4.x? > Failed to bring up pppoe0. > > Is there some other configuration that needs to be set on the container at > allow access to /dev/ppp? > > Thanks, > Matt > _______________________________________________ > lxc-users mailing list > [email protected] > http://lists.linuxcontainers.org/listinfo/lxc-users _______________________________________________ lxc-users mailing list [email protected] http://lists.linuxcontainers.org/listinfo/lxc-users
